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(57) An apparatus, method and system are dis- 
closed for providing a default mode for authentication 
failures in a mobile telecommunication network. The 
system includes an authentication center (typically co- 
located within a home location register (1 50)), an ad- 
junct network entity (120), and an originating mobile 
switching center (11 5). The home location register (1 50) 
generally stores information pertaining to a mobile unit 
(130), such as a cellular or PCS mobile telephone. The 
adjunct network entity contains one or more application 
nodes, such as an announcement application node 
(125A) for providing an announcement on a call leg to 
the mobile unit. When the network has been accessed 
by a mobile unit through a call leg , the originating mobile 
switching center is configured to perform an authentica- 
tion procedure. The originating mobile switching center 
further is configured, when the authentication procedure 
has resulted in an authentication failure, to receive a 
message from the authentication center to deny the mo- 
bile unit access to the network, to terminate a commu- 
nication session with the mobile unit, and to route the 
call leg to the announcement application node for the 
provision of an announcement on the call leg to the mo- 
bile unit. Following such an announcement, the originat- 
ing switching center is also configured to route the call 
leg to a customer service center, for example, to repro- 
gram the mobile unit. 
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Description 

Field of the invention 

[0001] The present invention relates in general to mo- 5 
bile or wireless telecommunication systems, and more 
particularly, to an apparatus, method and system for 
providing a default mode for authentication failures in 
mobile telecommunication networks. 

Background of the Invention 

[0002] With the advent of increasingly sophisticated 
mobile telecommunication services having operation 
across multi-vendor networks and coverage in national 
and international areas, the tracking of locations of mo- 
bile units (such as cellular, PCS or other mobile tele- 
phones) and the processing of corresponding services, 
particularly with roaming or visiting mobile units, has be- 
come correspondingly more complex. Within the mobile 
or wireless telecommunication industry, authentication, 
as defined in standards such as IS41C, ANSI 41 D and 
IS54B (promulgated by the American National Stand- 
ards Institute (ANSI), for example), may be used to ver- 
ify the legitimacy of a mobile unit seeking access to a 
mobile system, both within a local or home site or within 
a visited site. 

[0003] Existing authentication procedures are typical- 
ly invoked whenever a mobile unit powers up and ac- 
cesses a mobile network, such as a cellular or other mo- 
bile telecommunication system. For authentication pro- 
cedures, the mobile unit and the telecommunication 
system typically have been configured in advance with 
certain information, referred to as authentication infor- 
mation, which is utilized for certain calculations. Both 
the mobile unit and the telecommunication system per- 
form these calculations, and compare the results. A val- 
id authentication occurs if and when the compared re- 
sults are the same, and an authentication failure occurs 
if and when the compared results are different. 
[0004] To avoid unauthorized or fraudulent use of the 
telecommunication system, such as the "cloning" of cel- 
lular telephones, authentication information, such as 
shared secret data, is frequently updated. Following 
such an update, authentication calculations are per- 
formed and compared. In the prior art, when the authen- 
tication update is successful, such that the compared 
results are the same, the updated information continues 
to be used for future authentication procedures. When 
the authentication update is not successful, such that 
the compared results are different, then the updated in- 
formation is typically not used, with future authentication 
procedures utilizing the previous authentication infor- 
mation. 

[0005] When there is an authentication failure in the 
prior art, telecommunication service providers typically 
take one of two approaches. First, telecommunication 
service providers often completely deny access and 



service to the particular mobile unit which had the au- 
thentication failure. Under such circumstances, howev- 
er, the legitimate subscriber or owner of the particular 
mobile unit may have no idea why service is being de- 
nied. If the mobile user is unable to determine the cause 
of failure and is unable or unwilling to contact their serv- 
ice provider for resolution, the user may seek other com- 
munication services or another service provider. 
[0006] Second, in lieu of a denial of service, other 
service providers may provide service and allow access 
to the telecommunication system. In the event an illegit- 
imate or fraudulent user is able to gain such access to 
the telecommunication system, service providers may 
suffer a loss of revenue, billing problems, and customer 
dissatisfaction. 

[0007] As a consequence, a need remains for an ap- 
paratus, method and system to detect certain types of 
authentication failures, including failures of updates of 
authentication information, and following such detec- 
tion, to provide a default mode for the service provider 
to inform the subscriber of the authentication failure and 
to remedy the authentication failure. Such a default 
mode should be operable for both home and roaming 
mobile units, and also provide for a denial of access to 
the telecommunication system, to avoid potentially 
fraudulent use of the telecommunication system. Such 
a default mode should also route such failures for spe- 
cial treatment, such as for announcements and/or cus- 
tomer care. Such an apparatus, method and system 
should also be retroactively compatible and operate 
within the present mobile telecommunication structure 
and use existing protocols. In addition, such an appara- 
tus, method and system also should be user friendly and 
user transparent. 

Summary of the Invention 

[0008] An apparatus, method and system are dis- 
closed for providing a default mode for authentication 
failures in a mobile telecommunication network. The 
system includes a home location register, an adjunct 
network entity, and an originating mobile switching cent- 
er. The home location register ("HLR") generally stores 
information pertaining to a mobile unit, such as a cellular 
or PCS mobile telephone. In the preferred embodiment, 
the HLR also includes an "authentication center" ("AC"), 
and is referred to herein as an "HLR/AC". The adjunct 
network entity contains one or more application nodes, 
such as an announcement application node for provid- 
ing an announcement on a call leg to the mobile unit. 
[0009] The network (or system) is typically accessed 
by a mobile unit through a call leg, such as by placing 
an outgoing call through the originating mobile switching 
center ("MSC"). Either the originating MSC or the HLR/ 
AC may initiate authentication procedures, and the orig- 
inating MSC and the mobile unit both perform an au- 
thentication procedure. When the authentication proce- 
dure has resulted in an authentication failure, the origi- 
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nating MSC informs the HLR/AC. The HLR/AC then de- 
termines what default modes should be instituted, and 
transmits a message to the originating MSC to deny the 
mobile unit access to the network, to terminate a com- 
munication session with the mobile unit, and to route the 5 
call leg to the announcement application node for the 
provision of an announcement on the call leg to the mo- 
bile unit. Following such an announcement, the originat- 
ing switching center is also configured to route the call 
leg to a customer service center, for example, to guide 10 
the subscriber through a reprogramming of the mobile 
unit to avoid future authentication failures. 
[0010] Numerous other advantages and features of 
the present invention will become readily apparent from 
the following detailed description of the invention and 
the embodiments thereof, from the claims and from the 
accompanying drawings. 

Brief Description of the Drawings 

[0011] 

Fig. 1 is a block diagram illustrating a system em- 
bodiment for providing a default mode for authenti- 
cation failures in mobile telecommunication net- 25 
works in accordance with the present invention; 
Fig. 2 is a block diagram illustrating a portion of the 
system embodiment and an information flow for 
providing a default mode for authentication failures 
in mobile telecommunication networks in accord- 30 
ance with the present invention; 
Fig. 3 is a block diagram illustrating an apparatus 
embodiment for providing a default mode for au- 
thentication failures in mobile telecommunication 
networks in accordance with the present invention; 35 
and 

Fig. 4 is a flow diagram illustrating a method em- 
bodiment for providing a default mode for authenti- 
cation failures in mobile telecommunication net- 
works in accordance with the present invention 40 

Detailed Description of the Invention 

[0012] While the present invention is susceptible of 
embodiment in many different forms, there are shown 45 
in the drawings and will be described herein in detail 
specific embodiments thereof, with the understanding 
that the present disclosure is to be considered as an ex- 
emplification of the principles of the invention and is not 
intended to limit the invention to the specific embodi- so 
ments illustrated. 

[0013] As mentioned above, a need remains for an 
apparatus, method and system to detect certain types 
of authentication failures, and following such detection, 
to provide a default mode. In accordance with the 55 
present invention, such an apparatus, method and sys- 
tem are provided for detecting such authentication fail- 
ures, including failures of updates of authentication in- 



formation, and following such detection, for providing a 
default mode for the service provider to inform the sub- 
scriber of the authentication failure and to remedy the 
authentication failure. Such a default mode is operable 
for both home and roaming mobile units, and also pro- 
vides for a denial of access to the telecommunication 
system, to avoid potentially fraudulent use of the tele- 
communication system. The default mode provided in 
accordance with the invention also routes such authen- 
tication failures for special treatment, such as for an- 
nouncements and/or customer care. The apparatus, 
method and system or the present invention are also 
retroactively compatible and operate within the present 
mobile telecommunication structures and use existing 
protocols. In addition, the apparatus, method and sys- 
tem of the present invention are user friendly and user 
transparent. 

[0014] Fig. 1 is a block diagram illustrating a system 
embodiment for providing a default mode for authenti- 
cation failures in mobile telecommunication networks in 
accordance with the present invention. The system (or 
network) 100 includes one or more mobile switching 
centers ("MSCs") 115 and one or more wireline switch- 
ing centers 105 (collectively "switching centers"), which 
may also be connected via trunk and signaling lines to 
each other and to a broader network 110, such as to a 
public switched telephone network ("PSTN"), with mul- 
tiple telecommunication connections to other locations, 
such as providing a link to a satellite 135, which may be 
one or more communications or global positioning sys- 
tem satellites. The system 1 00 may also have a network 
(such as internet) connection to one or more computers 
155 (or other network communication device). 
[001 5] The system 1 00 may also includes various da- 
tabases such as a home location register ("HLR") 150, 
which stores information pertaining to the various mo- 
bile units 130, such as the types of services to be pro- 
vided to each such mobile unit 130, and for purposes of 
the present invention, also stores authentication infor- 
mation for each such mobile unit 130, referred to herein 
as a subscriber profile. When a mobile unit 130 may 
roam into additional geographic regions, an MSC 11 5 of 
that region typically obtains, through various registration 
and qualification procedures, a copy of the subscriber 
profile for the particular mobile unit 130, and stores the 
subscriber profile within the MSC 115, in a visitor loca- 
tion register ("VLR"). In the preferred embodiment, the 
HLR 150 also includes authentication functionality re- 
ferred to as an "authentication center" ("AC") and, as a 
consequence, the HLR is also referred to as an "HLR/ 
AC". In other embodiments, such authentication func- 
tionality may be provided within a stand-alone device 
and is within the scope of the present invention; in such 
a case, it is understood that HLR/AC includes such a 
stand-alone AC, without regard to other database func- 
tionality which may or may not be within an HLR. 
[001 6] The system 1 00 may also include one or more 
intelligent network devices referred to as adjunct net- 
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work entities 1 20, such as additional types of databases, 
a service control point ("SCP"), a service circuit node 
("SCN") (also referred to as a service node), an intelli- 
gent peripheral ("IP"), or another intelligent network de- 
vice. One or more adjunct network entities 1 20 are pref- 5 
erably connected or coupled to a wireline switching 
center 105 and to a MSC 115. In the preferred embod- 
iment, the adjunct network entities 120 provide a node 
or platform for particular applications ("application 
nodes") 125, such as an announcement application (for 
providing announcements to either the called party or 
the calling party), a voice mail application, a calling party 
pays application, a prepaid application, a one number 
service application, and other intelligent network appli- 
cations. 

[001 7] The wireline switching center 1 05 is also gen- 
erally connected to a plurality of telephones 1 40 or other 
customer premise equipment, while the MSCs 115 (via 
base stations 145 or other wireless transceivers) typi- 
cally have a wireless link to the various mobile units 1 30, 
such as cellular telephones, within a particular geo- 
graphic region, for voice and data communication. In ad- 
dition, while the wireline and mobile switching centers 
1 05 and 1 1 5 are usually physically separated due to reg- 
ulatory and other historical reasons, these switching 
centers may also be combined into one or more switch- 
ing centers having both wireline and wireless function- 
alities. 

[0018] As mentioned above, authentication proce- 
dures typically require a calculation, based on authen- 
tication information, followed by a comparison of the re- 
sults produced by the mobile unit 130 and by the HLR/ 
AC 1 50 or MSC 115. Authentication procedures typically 
occur on a "global" basis, as each mobile unit 130 pow- 
ers up or accesses the system 100. In other instances, 
an MSC 115 will generate a "challenge" to the mobile 
unit 130, providing the mobile unit 130 with certain cur- 
rent or updated authentication information, directing that 
the authentication calculations be performed by the mo- 
bile unit 130, and followed again by a comparison of the 
results generated. In either or both of these situations, 
the authentication information is often "shared secret 
data" (referred to as SSD), stored both in the mobile unit 
130 and the HLR/AC 150 (and/or MSC 115). The SSD 
itself is typically calculated using known algorithms 
(such as CAVE), respectively, by the mobile unit 1 30 and 
by the HLR/AC 1 50 (and/or MSC 1 1 5), based upon other 
information, such as the directory number and serial 
number of the mobile unit 1 30, an authentication key, 
and a random number generated by the HLR/AC 150 
(or MSC 115) and given to the mobile unit 1 30. The com- 
pared results are typically a checksum generated fol- 
lowing these SSD or other authentication calculations. 
[0019] As part or all of an SSD update, the random 
number (or the authentication key) is frequently updat- 
ed, for security purposes. In addition, the random 
number (or the authentication key) also may become 
corrupted, for example, by exposure to magnetic fields. 
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As a consequence, authentication failures following an 
SSD update may occur for a variety of reasons, such as 
due to illegitimate activities, e.g., a cloned or fraudulent 
use of a mobile unit 130, or due to legitimate activities, 
e.g., because of various environmental conditions. In 
accordance with the present invention, following an au- 
thentication failure, a default mode is provided in which, 
first, access to the system 100 is denied. Second, to ac- 
commodate subscribers having authentication failures 
for legitimate reasons, however, the present invention 
automatically routes the subscriber to an announce- 
ment, typically provided by an application node 125 in 
an adjunct network entity 120, followed by automatic 
routing to a customer service center 180, for reprogram- 
ming of the mobile unit 130 to eliminate future authen- 
tication failures. 

[0020] As mentioned above, in accordance with the 
present invention, the system 100 detects authentica- 
tion failures and, following such detection, provides a 
default mode. For such detection and default provision- 
ing, different implementations may occur depending up- 
on the geographic location of the mobile unit 130. For 
example, a particular mobile unit 130 is typically as- 
signed a "home" region, served by a particular MSC 115 
referred to as a "home" MSC 115, with a corresponding 
subscriber profile stored in an HLR/AC 150 connected 
to the home MSC 115. The H LR/AC 1 50 may be a stand- 
alone HLR/AC, as illustrated, or may be incorporated 
within the home MSC 1 1 5 (as an integrated HLR (l-HLR) 
with AC functionality). As the mobile unit 1 30 travels, the 
mobile unit 1 30 may roam into a non-home or originating 
geographic region served by an MSC 115 referred to as 
an originating MSC 115, which may also access the 
HLR/AC 150, either directly or via the home MSC 115. 
For example, with the millions of mobile units 130 now 
in use and with an increase in national and international 
roaming, the originating MSC 115 may be a short dis- 
tance or a continent away from the home MSC 115. The 
authentication failure detection and default provisioning 
of the present invention may be provided for both home 
and roaming cases, regardless of geographic separa- 
tion. 

[0021] The present invention is described in detail 
with respect to the roaming case, with corresponding 
ANSI-compatible messaging of the preferred embodi- 
ment. The methodology of the present invention is read- 
ily translatable into the home case by those skilled in the 
art, with ANSI-41 messaging converted into appropriate 
signaling between the home MSC 115 and HLR/AC 1 50. 
In addition, the use of the ANSI-41 and other related 
standards is understood by those skilled in the art and 
is considered as a preferred method to transfer of infor- 
mation between MSCs 115 and HLR/ACs 1 50, and other 
system 100 elements in the preferred embodiment of 
the present invention. The implementation of the meth- 
odology of the invention within the context of such stand- 
ards is not a limitation on the scope of the present in- 
vention. 
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[0022] Fig. 2 is a block diagram illustrating a portion 
of the system embodiment and an information flow for 
providing a default mode for authentication failures in 
mobile telecommunication networks in accordance with 
the present invention. Referring to Fig. 2, when the mo- 
bile unit 1 30 typically accesses (call leg 200) the system 
100, such as by initiating a call to a telephone 140 or 
another, second mobile unit 130, the originating MSC 
115 then sends a message, such as request for authen- 
tication, to the HLR/AC 150 (information flow 205). The 
HLR/AC 150 then transmits a response message to the 
originating MSC 115, such as an authentication request 
return result, which includes a new random number for 
an SSD update (information flow 210). In addition, to in- 
itiate authentication procedures, the HLR/AC 150 may 
also send an authentication directive to the originating 
MSC 115 (not separately illustrated in Fig. 2), which 
would also include the new random number for the SSD 
update. In turn, the originating MSC 115 transmits the 
new random number for the SSD update to the mobile 
unit 130 (via base station 145) (information flow 215). 
[0023] Following receipt of the SSD update, the mo- 
bile unit 130 calculates a new SSD, and transmits the 
result (typically as a checksum) to the originating MSC 
115 (also via base station 145) (information flow 220). 
In the interim, the originating MSC 115, through commu- 
nication with the HLR/AC 150, has been provided with 
sufficient data to perform its own calculation of the new 
SSD, and may compare its result with the result provid- 
ed by the mobile unit 130. When the results are the 
same, the authentication is successful or valid, and the 
originating MSC 115 so informs the HLR/AC 150 (not 
separately illustrated in Fig. 2), and any calls in progress 
with the mobile unit 130 are allowed to continue. 
[0024] When the results of the SSD update are not 
the same, however, an authentication failure has oc- 
curred, and the originating MSC 1 1 5 so informs the HLR/ 
AC 150, preferably utilizing an authentication status re- 
port (invoke) message, with a parameter indicating the 
authentication failure (information flow 225). In accord- 
ance with the present invention, the HLR/AC 150 trans- 
mits a response message (information flow 230) to the 
originating MSC 115, to implement the default mode of 
the present invention, namely: directing that the mobile 
unit 130 be denied access to the system 100 (and tear- 
ing down the portion of any current call (call leg 235) into 
the network 110 or to another switching center 115 or 
105); followed by routing (re-trunking) the mobile unit 
130 (through the current call leg 200 in progress with 
the mobile unit 130) to an announcement provided by 
an announcement application node 125A (information 
flow 240); and following the announcement, routing (re- 
trunking) the mobile unit 130 (also through the call leg 
200) to a customer service center 180, for a guided re- 
programming of the mobile unit 130 by the subscriber 
(information flow 245). In the preferred embodiment, the 
response message (information flow 230) from the HLR/ 
AC 150 to the originating MSC 115 is an ANSI-compat- 



ible authentication status report return result, with a de- 
ny access parameter, and with an announcement list pa- 
rameter. It should be noted that while an announcement 
list parameter is used in a variety of ANSI-41 messages, 
5 the use of the announcement list parameter in this con- 
text and within an authentication status report return re- 
sult message is one of the novel features of the present 
invention. The various sub-parameters within the an- 
nouncement list parameter are utilized to select which 
announcement(s) are to be played to the subscriber by 
the announcement application node 1 25A. For exam- 
ple, typical announcements may be "please hold for cus- 
tomer service" or "a technical problem has occurred; 
please wait while a service representative is contacted". 
[0025] A significant feature of the present invention is 
the retention of control of authentication at the HLR/AC 
150, regardless of the location of the mobile unit 150. 
This allows the HLR/AC 150 to individually determine 
what default mode treatment is to be provided to the par- 
ticular mobile unit 130. For example, the HLR/AC 150 
may track authentication failures, and a denial of access 
may be implemented only following several successive 
authentication failures, rather than immediately follow- 
ing one authentication failure. 

[0026] In addition, the present invention assists the 
subscriber, as a user of the mobile unit 130, by immedi- 
ately re-trunking the failed authentication call to custom- 
er service center 1 80. This allows for immediate correc- 
tion of any defects or problems that may have caused 
an authentication failure for a legitimate subscriber. The 
various embodiments of the present invention simulta- 
neously allow the service provider to avoid the various 
problems, such as billing problems and lost revenue, 
typically encountered with potentially fraudulent 
(cloned) mobile units 130. For example, many service 
providers prefer not to deny service (and miss the as- 
sociated revenues) when authentication fails. When 
there is authentication failure and a mobile unit 130 is a 
clone or other fraudulent device, the legitimate owner 
(assigned to the mobile directory number) may not be 
responsible for the corresponding billing charges and, 
accordingly, the service provider does not receive pay- 
ment for the fraudulently procured services. The present 
invention allows a denial of service in these circum- 
stances, while simultaneously obviating any inconven- 
ience to legitimate subscribers by automatically provid- 
ing immediate customer service. 
[0027] Fig. 3 is a block diagram illustrating an appa- 
ratus embodiment 300 to provide for intelligent tandem- 
ing of incoming calls to application nodes in telecommu- 
nication systems in accordance with the present inven- 
tion. Such an apparatus 300 preferably may be included 
within a switching center 115 or 105, or distributed 
among a switching center 115 or 105 and an adjunct 
network entity 1 20 of a system 1 00 or 200. The appara- 
tus 300 includes a processor 310, a network interface 
315, and a memory 320. The network interface 315 is 
utilized to receive and transmit data, such as voice in- 
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formation, control messages, shared secret data and 
other pertinent information, and may be utilized to re- 
ceive incoming call legs and transmit outgoing call legs 
(between and among the mobile unit 130, a called/call- 
ing party from the network 110, and the application 
nodes 125 (for announcements, and so on)). The mem- 
ory 320 may be an integrated circuit (such as various 
forms of RAM), a magnetic hard drive, an optical storage 
device, or any other type of data storage apparatus. The 
memory 320 is used to store information pertaining to 
program instructions or configurations (discussed be- 
low), call management and other call information, such 
as subscriber profile information. The memory 320 per- 
forms such information storage, and may be included 
within a database (such as database 125E), or within 
an HLR/AC or VLR, which may be stand-alone (such as 
HLR/AC 150) or integrated within a switching center 11 5 
or 105, or may be included as other platforms within ad- 
junct network entities 120. 

[0028] Continuing to refer to Fig. 3, the processor 310 
may include a single integrated circuit ("IC"), or may in- 
clude a plurality of integrated circuits or other compo- 
nents connected, arranged or grouped together, such 
as microprocessors, digital signal processors ("DSPs"), 
custom ICs, application specific integrated circuits 
("ASICs"), field programmable gate arrays ("FPGAs"), 
associated memory (such as RAM and ROM), and other 
ICs and components. As a consequence, as used here- 
in, the term processor should be understood to equiva- 
lent^ mean and include a single IC, or arrangement of 
custom ICs, ASICs, processors, microprocessors, con- 
trollers, FPGAs, or some other grouping of integrated 
circuits which perform the functions discussed above 
with reference to Figs. 1 and 2, and also discussed in 
detail below with reference to Fig. 4, with associated 
memory, such as microprocessor memory or additional 
RAM, DRAM, SRAM, MRAM, ROM, EPROM or 
E 2 PROM. The processor 310 with its associated mem- 
ory may be configured (via programming or hard-wiring) 
to perform the methodology of the invention, as dis- 
cussed above with reference to Figs. 1-2 and as dis- 
cussed below with reference to Fig. 4. For example, the 
methodology may be programmed and stored, in the 
processor 31 0 with its associated memory (and/or mem- 
ory 320) and other equivalent components, as a set of 
program instructions (or equivalent configuration or oth- 
er program) for subsequent execution when the proces- 
sor 310 is operative (i.e., powered on and functioning). 
Equivalently, when the processor 310 with its associat- 
ed memory and other equivalent components are imple- 
mented in whole or part as FPGAs, custom ICs and/or 
ASICs, the FPGAs, custom ICs or ASICs also may be 
designed, configured and/or hard-wired to implement 
the methodology of the invention. In the preferred em- 
bodiment, the processor 310 is implemented in its en- 
tirety as a microprocessor, which is programmed to im- 
plement the methodology of the invention. 
[0029] As mentioned above, in addition to incorpora- 



10 

tion within a switching center 115 (or 105), such an ap- 
paratus 300 may be distributed among a switching cent- 
er 115 or 105 and an adjunct network entity 120. For 
example, the apparatus 300 may be distributed among 

s an MSC 115 and an adjunct network entity 1 20, with the 
memory 320 incorporated within the adjunct network en- 
tity 120 (such as an HLR or other database), with the 
processor 310 having components within either or both 
the MSC 1 1 5 and the adjunct network entity 1 20, and 

10 with the network interface 215 incorporated within the 
MSC 115. Numerous other variations and equivalent 
embodiments will be readily apparent are also within the 
scope of the present invention. 

[0030] Fig. 4 is a flow diagram illustrating a method 

15 embodiment for providing a default mode for authenti- 
cation failures in mobile telecommunication networks in 
accordance with the present invention, and provides a 
useful summary of the present invention. Beginning with 
the mobile unit 130 accessing the system 100, such as 

20 by placing an outgoing call, start step 400, the originat- 
ing MSC 115 then sends a message to initiate authen- 
tication procedures, such as request for authentication, 
to the HLR/AC 150, step 405. The HLR/AC 150 then 
transmits a response message to the originating MSC 

25 115, such as an authentication request return result, 
containing authentication information for the authentica- 
tion procedure, such as including a new random number 
for an SSD update, step 410. In lieu of steps 405 and 
410, as a single step (not illustrated), the HLR/AC 150 

30 also may initiate authentication procedures, such as by 
sending an authentication directive to the originating 
MSC 115, which would also include the authentication 
information for the authentication procedure (e.g., the 
new random number for the SSD update). 

35 [0031] Next, step 415, the originating MSC 115 trans- 
mits the new random number for the SSD update to the 
mobile unit 130 (via base station 145), and the mobile 
unit 130 and the originating MSC 115 perform the au- 
thentication procedures discussed above, such as cal- 

40 culating a new SSD and comparing a checksum of the 
results. When the results are the same, the authentica- 
tion is successful or valid, step 420, and the originating 
MSC 115 so informs the HLR/AC 150, step 425, with 
any calls in progress with the mobile unit 130 allowed to 

45 continue without any further steps or measures required 
(i.e., by default), and the method may end, return step 
455. 

[0032] When the results of the SSD update are not 
the same, however, an authentication failure has oc- 

50 curred, step 420, and the originating MSC 115 so in- 
forms the HLR/AC 150, preferably utilizing an authenti- 
cation status report (invoke) message, with a parameter 
indicating the authentication failure, step 430. In accord- 
ance with the present invention, the HLR/AC 150 trans- 

55 mits a response message to the originating MSC 115, 
step 435, to implement the default mode of the present 
invention. As mentioned above, the response message 
is preferably an authentication status report return re- 
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suit, having a deny access parameter, and including an 
announcement list parameter. In the preferred embodi- 
ment, the default mode may include directing that the 
mobile unit 130 be denied access to the system 100 
(and tearing down the call leg into the network 110 or to 
another switching center 1 1 5 or 1 05), step 440; followed 
by routing (re-trunking) the mobile unit 130 (through the 
current call leg in progress between the originating MSC 
115 and the mobile unit 130) to an announcement pro- 
vided by an announcement application node 125A, step 
445; and following the announcement, routing (re-trunk- 
ing) the mobile unit 1 30 (also through the call leg be- 
tween the originating MSC 115 and the mobile unit 130) 
to a customer service center 1 80, step 450, for a repro- 
gramming of the mobile unit 130. Following steps 450 
or 425, the method may end, return step 455. 
[0033] As may be apparent from the above discus- 
sion, the system, apparatus and method of the present 
invention provide significant advantages. The various 
embodiments of the present invention provide for de- 
tecting authentication failures, including failures of up- 
dates of authentication information, and following such 
detection, provide a default mode for the service provid- 
er to inform the subscriber of the authentication failure 
and to remedy the authentication failure. Such a default 
mode is operable for both home and roaming mobile 
units, and also provides for a denial of access to the 
telecommunication system, to avoid potentially fraudu- 
lent use of the telecommunication system. The default 
mode provided in accordance with the invention also 
routes such authentication failures for special treatment, 
such as for announcements and/or customer service. 
Control of the mobile unit is also retained by the home 
HLR/AC. The apparatus, method and system or the 
present invention are also retroactively compatible and 
operate within the present mobile telecommunication 
structures and use existing protocols. In addition, the 
apparatus, method and system of the present invention 
are user friendly and user transparent. 
[0034] From the foregoing, it will be observed that nu- 
merous variations and modifications may be effected 
without departing from the spirit and scope of the novel 
concept of the invention. It is to be understood that no 
limitation with respect to the specific methods and ap- 
paratus illustrated herein is intended or should be in- 
ferred. It is, of course, intended to cover by the append- 
ed claims all such modifications as fall within the scope 
of the claims. 



Claims 

1. A method for providing a default mode for authen- 
tication failures in a mobile telecommunication net- 
work, the network having been accessed by a mo- 
bite unit through a call leg, the method comprising: 

(a) performing an authentication procedure; 



(b) when the authentication procedure has re- 
sulted in an authentication failure, denying the 
mobile unit access to the network, terminating 
a communication session with the mobile unit, 

5 and tearing down a second call leg from a net- 

work switch to a third party; and 

(c) providing an announcement on the call leg 
to the mobile unit. 

10 2. A method as claimed in claim 1, comprising: 

routing the call leg to a customer service center; 
and 

reprog ramming the mobile unit with correct da- 
is ta for the authentication procedure. 

3. A method as claimed in claim 1 , wherein step (a) 
comprises: 

20 transmitting a message requesting the authen- 

tication procedure; and 
receiving a response message containing au- 
thentication information, wherein the authenti- 
cation information is a random number. 

25 

4. A method as claimed in claim 1 , wherein step (a) 
comprises: 

calculating a first shared secret data by the mo- 
30 bile unit; 

calculating a second shared secret data by a 
switching center; and 

comparing the first shared secret data and the 
second shared secret data to determine the au- 
35 thentication failure. 

5. A method as claimed in claim 1 , wherein step (b) 
comprises transmitting an authentication status re- 
port return result, the authentication status report 

40 return result including a deny access parameter and 
an announcement list parameter. 

6. A method as claimed in claim 1 , wherein step (a) 
comprises transmitting an authorization directive 

45 message directing the authentication procedure, 
the authorization directive message containing au- 
thentication information. 

7. Apparatus for providing a default mode for authen- 
50 tication failures in a mobile telecommunication net- 
work, the network having been accessed by a mo- 
bile unit through a call leg, the apparatus compris- 
ing: 

55 a network interface for transmitting and receiv- 

ing a plurality of call legs; 
a memory; and 

a processor coupled to the network interface 
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and to the memory, wherein the processor, 
when operative, is configured to perform an au- 
thentication procedure; the processor further 
configured, when the authentication procedure 
has resulted in an authentication failure, to de- 
nying the mobile unit access to the network, to 
terminate a communication session with the 
mobile unit; to provide for an announcement on 
the call leg to the mobile unit, and to tear down 
a second call leg to a third party. 

8. Apparatus as claimed in claim 7, wherein the proc- 
essor is configured to route the call leg to a custom- 
er service center. 

9. Apparatus as claimed in claim 7, wherein the proc- 
essor is configured to, via the network interface, 
transmit a message requesting the authentication 
procedure, and receive a response message con- 
taining authentication information, wherein the au- 
thentication information is a random number. 

10. Apparatus as claimed in claim 7, wherein the proc- 
essor is configured to receive, via the network in- 
terface, a first shared secret data calculated by the 
mobile unit; and is configured to calculate a second 
shared secret data and to compare the first shared 
secret data and the second shared secret data to 
determine the authentication failure. 

11. Apparatus as claimed in claim 7, wherein the proc- 
essor is configured to receive, through the network 
interface, an authentication status report return re- 
sult, the authentication status report return result in- 
cluding a deny access parameter and an announce- 
ment list parameter. 

12. Apparatus as claimed in claim 7, wherein the proc- 
essor is configured to receive, through the network 
interface, an authorization directive message di- 
recting the authentication procedure, the authoriza- 
tion directive message containing authentication in- 
formation. 

13. A system for providing a default mode for authenti- 
cation failures in a mobile telecommunication net- 
work, the network having been accessed by a mo- 
bile unit through a call leg, the system comprising: 

an authentication center; and 
an originating mobile switching center coupla- 
ble to the authentication center, wherein the 
originating mobile switching center, when oper- 
ative, is configured to perform an authentica- 
tion procedure; the originating mobile switching 
center further configured, when the authentica- 
tion procedure has resulted in an authentication 
failure, to receive a message from the authen- 



tication center to deny the mobile unit access 
to the network, to terminate a communication 
session with the mobile unit, to provide for an 
announcement on the call leg to the mobile unit, 
5 and to tear down a second caii leg to a third 

party. 

14. A system as claimed in claim 13, comprising: 

10 an adjunct network entity couplable to the orig- 

inating switching center, the adjunct network 
entity having an announcement application 
node; and 

wherein the originating mobile switching center 
15 is configured to route the call leg to the an- 

nouncement application node. 

15. A system as claimed in claim 13, wherein the orig- 
inating mobile switching center is configured to 

20 route the call leg to a customer service center. 

16. A system as claimed in claim 13, wherein the orig- 
inating mobile switching center is configured to 
transmit to the authentication center a message re- 

25 questing the authentication procedure, and receive 
from the authentication center a response message 
containing authentication information, wherein the 
authentication information is a random number. 

30 17. A system as claimed in claim 13, wherein the orig- 
inating mobile switching center is configured to re- 
ceive a first shared secret data calculated by the 
mobile unit, to calculate a second shared secret da- 
ta, and to compare the first shared secret data and 

35 the second shared secret data to determine the au- 
thentication failure. 

18. A system as claimed in claim 13, wherein the orig- 
inating mobile switching center is configured to re- 
40 ceive, from the authentication center, an authenti- 
cation status report return result, the authentication 
status report return result including a deny access 
parameter and an announcement list parameter. 

45 19. A system as claimed in claim 13. wherein the orig- 
inating mobile switching center is configured to re- 
ceive, from the authentication center, an authoriza- 
tion directive message directing the authentication 
procedure, the authorization directive message 

50 containing authentication information. 

20. A system as claimed in claim 13, wherein the au- 
thentication center is co-located with a home loca- 
tion register. 

55 

21. A system for providing a default mode for authenti- 
cation failures in a mobile telecommunication net- 
work, the network having been accessed by a mo- 
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bile unit through a call leg, the system comprising: 

an adjunct network entity, the adjunct network 
entity having an announcement application 
node; 5 
a home location register having an authentica- 
tion center; and 

an originating mobile switching center coupla- 
ble to the authentication center, wherein the 
originating mobile switching center, when oper- 10 
ative, is configured to perform an authentica- 
tion procedure by calculating a first shared se- 
cret data result and comparing the first shared 
secret data result with a second shared secret 
data result received from the mobile unit; the 15 
originating mobile switching center further con- 
figured to determine an authentication failure 
when the first shared secret data result is not 
identical to the second shared secret data re- 
sult; the originating mobile switching center fur- 20 
ther configured, when the authentication proce- 
dure has resulted in the authentication failure, 
to transmit an authentication status report mes- 
sage to the authentication center indicating the 
authentication failure, and to receive an au- 25 
thentication status report return result message 
from the authentication center, the authentica- 
tion status report return result message includ- 
ing a deny access parameter and an announce- 
ment list parameter; the originating mobile 30 
switching center further configured to deny the 
mobile unit access to the network and to termi- 
nate a communication session with the mobile 
unit by tearing down a second call leg to a third 
party; and wherein the originating mobile 35 
switching center is further configured to route 
the call leg to the announcement application 
node to provide for an announcement on the 
call leg to the mobile unit, and subsequent to 
the provision of the announcement, to route the 40 
call leg to a customer service center 
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